CVE-2019-6179

An XML External Entity (XXE) processing vulnerability was reported in Lenovo XClarity Administrator (LXCA) prior to version 2.5.0 , Lenovo XClarity Integrator (LXCI) for Microsoft System Center prior to version 7.7.0, and Lenovo XClarity Integrator (LXCI) for VMWare vCenter prior to version 6.1.0 that could allow information disclosure.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:lenovo:xclarity_administrator:*:*:*:*:*:*:*:*
cpe:2.3:a:lenovo:xclarity_integrator:*:*:*:*:*:vcenter:*:*
cpe:2.3:a:lenovo:xclarity_integrator:*:*:*:*:*:scvmm:*:*

History

21 Nov 2024, 04:46

Type Values Removed Values Added
References () https://support.lenovo.com/solutions/LEN-27805 - Vendor Advisory () https://support.lenovo.com/solutions/LEN-27805 - Vendor Advisory

Information

Published : 2019-09-03 19:15

Updated : 2024-11-21 04:46


NVD link : CVE-2019-6179

Mitre link : CVE-2019-6179

CVE.ORG link : CVE-2019-6179


JSON object : View

Products Affected

lenovo

  • xclarity_integrator
  • xclarity_administrator
CWE
CWE-611

Improper Restriction of XML External Entity Reference